Law360 is reporting that Rady Children’s Hospital has been sued over the Blackbaud ransomware breach. The complaint alleges violations of California’s Confidentiality of Medical Information Act . The hospital had reported in October that they were notifying 19,788 about the breach. Access to the Law360 article is restricted to subscribers, but DataBreaches.net’s tracking file on…
Category: Health Data
HIPAA Enforcement by State Attorneys General
HIPAA Journal has a nice recap of of HIPAA enforcement actions by states attorney general. You can read it here.
PA: Einstein Healthcare Network Notifies Patients August Email Hack
The following is a press release that appears totally silent as to why it took from August, 2020, when the breach was discovered, until January, 2021 to disclose this breach. PHILADELPHIA, Jan. 20, 2021 /PRNewswire/ — Einstein Healthcare Network (“Einstein”) previously announced that it began mailing letters to patients whose information may have been involved in a data…
Vendor ransomware attack by Ryuk impacted 21 healthcare entities in 2019
A recent report headlining that 560 healthcare facilities were impacted by ransomware attacks in 2020 may have seemed shocking until you realize any one ransomware attack can impact multiple hospitals or clinics in a network (just think of the Universal Health Services incident where the Pennsylvania-based system took 400 facilities offline when they were attacked). …
CHwapi hospital hit by ransomware; operations canceled, and another city hit
Another hospital has been hit with ransomware. The following is a Google translation of a report The CHwapi, hospital center of Picardy Wallonia in Tournai, was the victim of a computer attack on Sunday evening. All non-urgent operations were canceled on Monday. No ransom demand has been demanded, according to management. The CHwapi was the…
TX: Hendrick: Computer network breach compromised some patients’ information
Laura Gutschke reports: Hendrick Health System on Friday began notifying patients that some identifying information may have been compromised during a network security breach identified Nov. 20. An investigation determined that patient information may have been accessible between Oct. 10 and Nov. 9, the release said, including patient names, Social Security numbers, demographic and other limited…